Rewriting the rules of patch management
|
|
- Ashley Cummings
- 5 years ago
- Views:
Transcription
1 IBM Security Thought Leadership White Paper July 2015 Rewriting the rules of patch management IBM BigFix shifts the patching paradigm
2 2 Rewriting the rules of patch management Contents 2 Introduction 3 Addressing the patch management conundrum 4 Changing the patch management paradigm 8 Understanding why it works 8 Achieving continuous compliance 8 Using IBM BigFix 9 Offering a comprehensive endpoint management and security portfolio 11 Conclusion 11 For more information 11 About IBM Security solutions Introduction Malware attacks are in a race against time to exploit vulnerable computer systems before software vendors publish patches and their customers can apply them. When malware wins the race, organizations lose productivity and risk loss of sensitive data, potential litigation and regulatory fines. The sheer enormity of the problem is alarming the cost of cybercrime and cyber espionage to the global economy can be measured in the hundreds of billions of dollars, according to the security firm McAfee and the Center for Strategic and International Studies. In the US alone, hacking costs the overall economy as much as USD100 billion each year. 1 To combat these threats, more and more software vendors are issuing more and more patches in attempts to keep pace with the frenzy of malware exploits. Unfortunately, most organizations are not equipped to handle this onslaught of patches in a timeand cost-effective manner. Because of organizational processes, it takes most IT departments weeks or even months to deploy patches throughout their environments. In fact, it can take organizations several months to even come close to achieving complete patch compliance. By then, countless additional patches have been issued, meaning that organizations are perpetually at high risk and out of compliance and the situation only compounds over time. Patch management has always been an uphill climb because of the massive complexity involved. Despite the risks, some organizations are reluctant to patch because of the time and labor required, plus the potential of disrupting business operations.
3 IBM Security 3 In an organization with a heterogeneous hardware and software environment, staying on top of the multitude of patches and issuing them in a timely manner can overextend IT staff and budgets. What is needed is a rapidly deployable, cost-effective, policy-based patch management solution that: Easily scales to manage all endpoints in organizations of all sizes even the very largest with minimal infrastructure Supports multiple vendors, operating systems (including Microsoft Windows, Linux and UNIX), applications and platforms Works over low-speed connections and supports devices that roam outside of the organizational network Minimizes the demand on IT staff Operates in real time, deploying patches organization-wide in hours Manages even offline virtual machines IBM BigFix combines the separate pieces of the patch management puzzle into an intelligent, simplified solution that streamlines and optimizes the process of researching, assessing, remediating, confirming, enforcing and reporting on patches. Addressing the patch management conundrum While patch management may seem straightforward, it is one of the most complex and critical challenges an organization faces. The nuances of effective patch management run much deeper than simply having a system administrator push out patches or relying on vendor-supplied patch mechanisms, hoping that they will be successfully applied but never knowing for sure. The patch management conundrum raises questions that many organizations may find difficult, if not impossible, to answer. For example: How can system administrators keep track of patches in an environment with hundreds or hundreds of thousands of endpoints running a variety of operating systems (OSs) and applications? How are system administrators supposed to monitor the status of roaming laptops and other mobile devices? How long will the patching process take from start to finish, and how will system administrators confirm (and prove) that every endpoint in their infrastructure has been properly patched and stays that way? How can system administrators quickly test patches before deploying them and roll them back if they cause problems? How can patches be deployed without interfering with end-user experience and productivity? How can patches be applied to business applications during strict maintenance windows, and can this be done with minimal downtime? While it is clear that patch management is one of the most important security priorities for organizations, these questions indicate just how many barriers organizations face when implementing effective patch management practices. Between a lack of visibility and personnel, potential business impact, network-bandwidth limitations, lack of manageability, long remediation times, scalability issues, and coverage for different platforms, third-party applications, and roaming endpoints, the hurdles are many. Fortunately, these hurdles are surmountable. BigFix removes these obstacles with a comprehensive solution that is purposebuilt for highly distributed, heterogeneous environments. With this solution, organizations can finally see, change, enforce and report on patch compliance status in real time, on a global scale, through a single console. How should an organization deploy critical out-of-band patches that arrive urgently and off the routine patch schedule?
4 4 Rewriting the rules of patch management Patch management process Research Report Assess IBM BigFix Step 1: Research Before: The first step in the patch management process involves discovering which patches are available. This often includes researching patch availability through vendor messages, application pop-up notifications, websites, blogs and a variety of other sources. This process must be repeated weekly or even daily for hundreds of patches, across scores of OS, application and anti-malware vendors. One alternative relying on default vendor auto-updates may lead to mistakes that can have negative consequences. Automating acceptance of patches without testing them can put organizations at huge risk, because there is no enterprise control over timing or reporting and relying on users to apply updates is risky and unreliable. Enforce Confirm Remediate With BigFix, patch management becomes a fully unified, closed- loop process that helps enhance security and save money. Changing the patch management paradigm While there is no single, official patch management best practice, the general approach involves a closed-loop process with six basic steps: research, assess, remediate, confirm, enforce and report. Historically, many of these steps were implemented via separate, non-integrated technologies, making it virtually impossible to create a closed-loop, real-time patch management process. BigFix provides all of these steps as part of a unified, fully integrated process that can help enhance security and save money, time and resources. Here is a before-and-after look at how this solution changes the rules for patch management. A better approach is to have a patch management vendor provide a consolidated stream of the most common patches so that the organization only needs to evaluate each load of patches as it comes in, test the patches for compatibility with the organizational environment, and then deploy them via highly granular policies targeted to specific machine profiles. This allows specific patches to be applied only to the endpoints that need them. The problem, however, is that if this approach is not automated, it requires significant time and resources that organizations may not have. After: IBM tracks patch releases from OS, anti-malware and common third-party application vendors and makes them available to users, helping to eliminate the need for time-consuming patch research processes. Patches and updates are wrapped in logic to help ensure accurate vulnerability and remediation assessments, then tested extensively. This results in patch policies called IBM Fixlet messages. These Fixlet messages are then automatically sent to BigFix customer servers. Users can simply open up their BigFix consoles to view the latest updates and select patches for deployment. They can also create their own custom Fixlet messages through an easy-to-use, wizard-driven interface. This process works for virtually any update, including internal application patches.
5 IBM Security 5 Step 2: Assess Before: For each identified patch, the IT organization must determine the applicability and criticality of the update, identifying which endpoints need patching across the organization. In the case of security updates, this critical data translates directly into risk, as business risk increases with the number of unpatched endpoints. Many organizations do not have access to the complete, current asset and configuration data set required to quantify the scope and impact of patches across the organization. There are tools that can help acquire this data, but many require days or weeks to collect and collate this information by scanning every endpoint on the network and many roaming endpoints are rarely connected to the network. This information needs to be immediately available to system administrators at the time of patch release since many patches are time-critical, and the process of risk assessment and patch prioritization must take place as quickly as possible. After: With BigFix, a single intelligent software agent is installed on all managed endpoints to continuously monitor and report endpoint state, including patch levels, to a management server. The agent also compares endpoint compliance against defined policies, such as mandatory patch levels and standard configurations. This information is especially critical during emergency patch scenarios when a vendor releases a highly critical, out-ofband patch, and organizations must rapidly quantify the overall magnitude and risk from the related exploit(s). In one example, a customer using BigFix installed agents on 5,100 endpoints and discovered that more than 1,500 (30 percent) of their endpoints were missing at least one critical patch. Taken as a whole, endpoints across the institution were missing 20,033 critical patches an average of 13 patches per endpoint. Once the total number of patches is mapped to the endpoints that need them, and the business criticality is defined, the IT organization can proceed to the remediation step. Step 3: Remediate Before: After a patch is assessed and a determination is made to distribute it across the organization, it must be packaged and tested to ensure that it will not conflict with other patches or third-party software installed on the target endpoints. Patch prerequisites and dependencies, such as minimum service-pack levels, must also be determined. This is usually accomplished by applying and testing the update on a select number of endpoints before a general release a process that can take days or weeks to complete using manual tools. Once testing indicates that the patch is probably safe for organization-wide deployment, it is applied to affected endpoints, typically in batches, further extending the patch window. Long remediation times are primarily due to the inability to rely on patch quality, and secondarily due to unreliable distribution mechanisms, both of which result in low first-pass patch rates. Most organizations are therefore forced to proceed slowly in case a patch causes an unforeseen problem, as well as to ensure that network links are not overwhelmed by the patch distribution process. As a result, remediation is often difficult to accomplish quickly and effectively on an organizational scale. Many tools also require deep platform expertise and highly trained personnel to operate them, or do not work until endpoints are connected to a high-speed corporate network leaving roaming laptops and other mobile endpoints out of the update cycle for long periods. Many do not provide the finegrained, policy-based controls that operators need to effectively deploy patches to all affected endpoints in the organization. Controls such as patch installation time windows whether or not a user must be present reboot options, method of distribution (including bandwidth and CPU throttles), system type and user notification options must be available inputs into the automated update processes.
6 6 Rewriting the rules of patch management After: Since BigFix customer servers automatically download the latest patch updates, endpoints can immediately begin to assess whether a particular patch is needed, without the need for operator intervention. The patch Fixlet messages include distribution instructions, including OS, version and prerequisite requirements, eliminating the need for IT to package and thoroughly test the patch. Operators can then spend a few minutes determining when the patch should go out, what notification should be displayed to end users (if any), whether or not to allow users to delay a patch implementation and for how long, and whether to force (or delay) reboots. The endpoint agent receives the new policy and immediately evaluates the endpoint to determine if the patch is applicable and if so, it downloads and applies the patch, reporting back success or failure within minutes. This approach, combined with the BigFix relay structure and ability to reach Internet-connected devices, significantly reduces network load and can improve first-pass success rates to greater than 95 percent. The solution also provides a highly secure mechanism that employs cryptographic identities, ensuring that only authorized administrators can create and distribute policies. The solution stores audit information that tracks who ordered which policies to be applied to which endpoints, and does not require specific OS expertise for operators that initiate the remediation process. Any BigFix operator with a few hours of basic training can safely and rapidly patch Windows, Linux, UNIX and Mac OSs, as well as Windows and Mac applications, with no domain-specific knowledge or expertise. Step 4: Confirm Before: After patches are scheduled for application, successful installation must be confirmed. This lets IT know when the patch cycle is complete and helps to support compliance reporting requirements. This data should be communicated back to a central reporting system that updates personnel on the process, including exceptions, in real time. However, many patch management technologies do not effectively perform this process, requiring weeks to re-scan all endpoints and even longer to correct exceptions. This lag time introduces significant uncertainty regarding the organization s overall business risk and compliance posture. Many products do not provide confirmation that patches are applied or if they do, it can take days or even weeks to obtain an organization-wide report. Even worse, some tools incorrectly report that patches are applied, when in fact the files were downloaded but the patch was not actually applied. With this amount of delay and uncertainty, some endpoints are often left exposed, leaving a significant window of vulnerability. After: Once a patch is deployed, the BigFix agent automatically and continuously reassesses the endpoint status to confirm successful installation, immediately updating the management server in real time (or in the case of roaming devices, at the earliest opportunity). This step is critical in supporting compliance requirements, which require definitive proof of continuous patch installation. With this solution, operators can watch the patch deployment process in real time via a centralized management console, receiving confirmation of patch installation within minutes of initiating the patch process. Closing the loop on patch deployment enables organizations to ensure patch compliance in a way that is smarter, faster and much more reliable. Step 5: Enforce Before: After the initial application, many updates do not always stick. Users intentionally or accidentally uninstall patches, new applications or patches may corrupt existing updates, malware may deliberately remove patches, or problems created by the update may necessitate a rollback. Patch management technologies must continuously monitor machines to ensure compliance
7 IBM Security 7 with update policies, providing rapid, policy-based rollback capabilities in the event of a major patch problem. If a patch is removed contrary to security policy, it must be immediately reinstalled, and if a patch creates a major problem after application, organizations must also be able to issue a rapid mass rollback. Without the proper tools, this step becomes next to impossible. After: The BigFix intelligent agent continuously enforces patch policy compliance, helping to ensure that endpoints remain updated. If a patch is uninstalled for any reason, the policy can specify that the agent should automatically reapply it to the endpoint as needed. In the event of problems with a patch, BigFix administrators can quickly and easily issue a rollback to endpoints either en masse or to a select few. Through the same centralized console, endpoint compliance status is reported in real time, allowing IT administrators to easily monitor the state of all managed endpoints in the organization. Administrators enjoy full control of their endpoints, enabling them to handle significantly more work than other products that require a lot of manual intervention and introduce significant time lags into the reporting process. Step 6: Report Before: Compliance and corporate policies require highly detailed, up-to-date dashboards and reports that indicate the organization s risk position and patch management status for a variety of consumers, including compliance auditors, executives, management and even end users. Without an overall solution, there is no clear-cut way to report on patch status organization-wide. Dashboard reports in BigFix show patch management progress in real time. After: The integrated web-reporting capabilities of BigFix allow end users, administrators, executives, management and others to view up-to-the-minute dashboards and reports that indicate which patches were deployed, when they were deployed, who deployed them, and to which endpoints. Special click-through dashboards show patch management progress in real time.
8 8 Rewriting the rules of patch management Understanding why it works Traditional patch management approaches that utilize manual processes and cumbersome scan- and poll-based mechanisms are no longer fast enough or cost-effective enough to meet business and regulatory requirements, leaving organizations with unacceptably high risk and costs. Many organizations that try to utilize free or low-cost vendor tools quickly realize that these solutions are not enterprise-class. Most are limited to a single vendor, do not provide organizational control over what patches go where and when, are disruptive to the end user, and offer poor reporting that does not reflect real-time status. Endpoints not immediately patched become a window of opportunity for cybercriminals and a window of organizational risk. Moreover, organizations need to manage updates for a wide variety of vendor products and hardware form factors. BigFix is a market leader in terms of breadth of coverage, speed, automation and cost effectiveness, providing comprehensive OS and third-party application patches. The solution, which includes deploying a single multipurpose, lightweight intelligent agent to all endpoints, supports a wide variety of device types ranging from servers to desktop PCs, roaming Internetconnected laptops, and specialized equipment such as point-of-sale devices, ATMs and self-service kiosks. A single management server can support up to 250,000 endpoints, regardless of their location, connection type, speed or status, and additional servers can provide virtually unlimited scalability. Policy-based controls provide IT administrators with fine-grained, highly automated patch management capabilities, and comprehensive reports support compliance requirements. Policy compliance is continuously assessed and enforced by the intelligent agent, regardless of endpoint connectivity to the network. Competing products can be backend heavy, requiring massive amounts of hardware and personnel to support deployments. In many cases, they require dozens or even hundreds of servers, multiple agents per endpoint, and an army of operators to support the same environment that BigFix handles with one management server, one endpoint agent, and as little as 1/ 20th of the personnel. Another key aspect of the BigFix architecture is support for endpoints that are on and off the corporate network. Roaming devices like laptops, for example, can receive patches via any Internet connection, including WiFi or even dialup. The patch management process is virtually transparent to the user, and Fixlet messages control the total amount of bandwidth and CPU consumed by the endpoint agent, which is location- and connection-aware to optimize network usage. Achieving continuous compliance Many organizations need to establish, document and prove compliance with patch management processes in order to comply with governmental regulations, service level agreements (SLAs) and corporate policies. Regulations such as Sarbanes-Oxley (SOX), Payment Card Industry (PCI) Data Security Standard (DSS) and Health Insurance Portability and Accountability Act (HIPAA)/Health Information Technology for Economic and Clinical Health (HITECH) Act require that a regular, fully documented patch management process be in place with proof of continuous compliance necessary in order to pass audits. Unfortunately, many organizations spend an enormous amount of time and resources on patch management, yet still cannot meet compliance requirements. The ability of BigFix to enforce policies and quickly report on compliance can help improve an organization s audit readiness and pass rates. Using IBM BigFix Organizations are meeting the challenges of patch management head-on using BigFix. For customers, the results have included faster deployment, better compliance, reduced IT costs and shorter management cycles.
9 IBM Security 9 Offering a comprehensive endpoint management and security portfolio IBM offers patch management capabilities through a standalone product IBM BigFix Patch or as an integral part of two larger endpoint management solutions IBM BigFix Lifecycle and IBM BigFix Compliance. The BigFix family all operates from the same console, management server and endpoint agent, enabling organizations to consolidate tools, reduce the number of endpoint agents, and lower management costs. BigFix is part of a comprehensive IBM security portfolio, helping organizations address security challenges for users and identities, data and information, applications and processes, networks, servers and endpoints, and physical infrastructures. By enhancing real-time visibility and control and improving endpoint security and management, the IBM portfolio supports today s ever-expanding, smarter data centers to facilitate the instrumented, interconnected and intelligent IT operations of a smarter planet. BigFix technology provides: A single intelligent agent BigFix leverages an industryleading approach that places a single intelligent agent on each endpoint. This agent performs multiple functions, including continuous self-assessment and policy enforcement yet it has minimal impact on system performance, using less than two percent of the endpoint CPU, on average. The agent initiates actions in an intelligent manner, sending messages upstream to the central management server and pulling patches, configurations or other information to the endpoint when necessary to comply with relevant policies. As a result of the agent s intelligence and speed, the central management server always knows the compliance and change status of endpoints, enabling faster and more up-to-date compliance reporting. Instant answers Whether it s finding out how many instances of Adobe Acrobat are installed or validating which laptops are impacted by a manufacturer recall, BigFix provides answers, across the organization, within minutes. Thanks to the intelligent agent, there is no need to wait for lengthy scans to complete, a centralized server to churn on the details, or thousands of SQL queries to finish running before dashboards and reports are generated. Each agent evaluates the relevance of the question, analyzes the information, reports back, and even takes action based on the analyses, if desired. Roaming endpoint coverage The corporate-owned laptop has moved well beyond the confines of a corporate office. Users are connecting from home, hotels, airports and even airplanes. Always staying a step ahead, BigFix provides the unique ability to manage endpoints in real time even for roaming devices. Broad platform coverage It s hard enough to keep up with OS security updates, much less non-critical and non-securityrelated updates and a wide variety of application updates but the challenge is intensified further when extended to offline virtual machines. However, a well-run BigFix environment with continuously delivered new content and features makes it a lot simpler, minimizing the downtime associated with putting off updates.
10 10 Rewriting the rules of patch management IBM BIGFIX ADDRESSES PATCH MANAGEMENT CHALLENGES See how real-world clients in a wide range of business sectors from banking, to retail, to healthcare have achieved significant business improvements using IBM BigFix.* Challenge: Reduced software update and patch cycle times from 3 weeks to 3 days Speeding patch management deployment 80% 90% reduction in patch deployment times reduction in time to deploy new patches and software upgrades Challenge: % patch compliance rate Achieving compliance with licensing, corporate policies and regulations increase in patch compliance, from 60 to 93 percent USD in license noncompliance fees avoided Challenge: Reducing IT costs EUR USD 75% 3.2 million 500,000 reduction in staff needed to support endpoint management 33% saved in labor, software licensing and hardware costs * Read the customer case studies at: 1 million saved on software licensing costs
11 IBM Security 11 Conclusion BigFix addresses key challenges that many organizations currently face, providing a centralized, organization-wide server, desktop and mobile device patch management solution that automates and helps to alleviate much of the patch testing process from IT. BigFix deploys in days, and a single management server supports up to 250,000 endpoints, helping to drastically increase patch success rates, improve regulatory compliance and reduce expenditures. In a world where seconds matter, BigFix can be the difference between a successful patch management strategy and one that leaves the organization at risk. For more information To learn more about IBM BigFix, contact your IBM representative or IBM Business Partner, or visit: ibm.com/security/bigfix About IBM Security solutions IBM Security offers one of the most advanced and integrated portfolios of enterprise security products and services. The portfolio, supported by the world-renowned IBM X-Force research and development team, provides security intelligence to help organizations holistically protect their people, infrastructures, data and applications, offering solutions for identity and access management, database security, application development, risk management, endpoint management, network security and more. These solutions enable organizations to effectively manage risk and implement integrated security for mobile, cloud, social media and other enterprise business architectures. IBM operates one of the world s broadest security research, development and delivery organizations, monitors 13 billion security events per day in more than 130 countries, and holds more than 3,000 security patents. Additionally, IBM Global Financing can help you acquire the software capabilities that your business needs in the most cost-effective and strategic way possible. We ll partner with credit-qualified clients to customize a financing solution to suit your business and development goals, enable effective cash management, and improve your total cost of ownership. Fund your critical IT investment and propel your business forward with IBM Global Financing. For more information, visit: ibm.com/financing
12 Copyright IBM Corporation 2015 IBM Security Route 100 Somers, NY Produced in the United States of America July 2015 IBM, the IBM logo, ibm.com, BigFix, Fixlet, and X-Force are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the web at Copyright and trademark information at ibm.com/legal/copytrade.shtml Adobe is a registered trademark of Adobe Systems Incorporated in the United States, and/or other countries. Linux is a registered trademark of Linus Torvalds in the United States, other countries, or both. Microsoft and Windows are trademarks of Microsoft Corporation in the United States, other countries, or both. Statement of Good Security Practices: IT system security involves protecting systems and information through prevention, detection and response to improper access from within and outside your enterprise. Improper access can result in information being altered, destroyed, misappropriated or misused or can result in damage to or misuse of your systems, including for use in attacks on others. No IT system or product should be considered completely secure and no single product, service or security measure can be completely effective in preventing improper use or access. IBM systems, products and services are designed to be part of a lawful, comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products or services to be most effective. IBM DOES NOT WARRANT THAT ANY SYSTEMS, PRODUCTS OR SERVICES ARE IMMUNE FROM, OR WILL MAKE YOUR ENTERPRISE IMMUNE FROM, THE MALICIOUS OR ILLEGAL CONDUCT OF ANY PARTY. 1 James Lewis and Stewart Baker, The Economic Impact of Cybercrime and Cyber Espionage, Center for Strategic and International Studies (CSIS) and McAfee, July rpt_cybercrime-cost_0713_ph4_0.pdf UNIX is a registered trademark of The Open Group in the United States and other countries. This document is current as of the initial date of publication and may be changed by IBM at any time. Not all offerings are available in every country in which IBM operates. The client examples cited are presented for illustrative purposes only. Actual performance results may vary depending on specific configurations and operating conditions. THE INFORMATION IN THIS DOCUMENT IS PROVIDED AS IS WITHOUT ANY WARRANTY, EXPRESS OR IMPLIED, INCLUDING WITHOUT ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND ANY WARRANTY OR CONDITION OF NON-INFRINGEMENT. IBM products are warranted according to the terms and conditions of the agreements under which they are provided. The client is responsible for ensuring compliance with laws and regulations applicable to it. IBM does not provide legal advice or represent or warrant that its services or products will ensure that the client is in compliance with any law or regulation. Please Recycle WGW03137-USEN-00
Combatting advanced threats with endpoint security intelligence
IBM Software Thought Leadership White Paper January 2014 Combatting advanced threats with endpoint security intelligence IBM Endpoint Manager and IBM Security QRadar solutions enable real-time, closed-loop
More informationIBM BigFix Compliance
IBM BigFix Compliance A single solution for managing endpoint security across the organization Highlights Ensure configuration compliance using thousands of out-of-the-box bestpractice policies with automated
More informationContinuous Diagnostics and Mitigation demands, CyberScope and beyond
Continuous Diagnostics and Mitigation demands, CyberScope and beyond IBM BigFix streamlines federal security compliance with real-time insights and remediation Highlights Meet Continuous Diagnostics and
More informationMaintaining continuous compliance a new best-practice approach
IBM Software Thought Leadership White Paper June 2013 Maintaining continuous compliance a new best-practice approach IBM provides endpoint auditing and management for distributed environments 2 Maintaining
More informationThe McGill University Health Centre (MUHC)
The McGill University Health Centre (MUHC) Strengthening its security posture with in- depth global intelligence Overview The need MUHC security staff wanted to more quickly identify and assess potential
More informationIBM Security. Endpoint Manager- BigFix. Daniel Joksch Security Sales IBM Corporation
IBM Security Endpoint Manager- BigFix Daniel Joksch Security Sales Establish security as an immune system Malware protection Incident and threat management Identity management Device management Data monitoring
More informationNetworking for a smarter data center: Getting it right
IBM Global Technology Services October 2011 Networking for a smarter data center: Getting it right Planning the network needed for a dynamic infrastructure 2 Networking for a smarter data center: Getting
More informationIBM Security Access Manager
IBM Access Manager Take back control of access management with an integrated platform for web, mobile and cloud Highlights Protect critical assets with risk-based and multi-factor authentication Secure
More informationTotal Protection for Compliance: Unified IT Policy Auditing
Total Protection for Compliance: Unified IT Policy Auditing McAfee Total Protection for Compliance Regulations and standards are growing in number, and IT audits are increasing in complexity and cost.
More informationWITH ACTIVEWATCH EXPERT BACKED, DETECTION AND THREAT RESPONSE BENEFITS HOW THREAT MANAGER WORKS SOLUTION OVERVIEW:
SOLUTION OVERVIEW: ALERT LOGIC THREAT MANAGER WITH ACTIVEWATCH EXPERT BACKED, DETECTION AND THREAT RESPONSE Protecting your business assets and sensitive data requires regular vulnerability assessment,
More informationSIEM: Five Requirements that Solve the Bigger Business Issues
SIEM: Five Requirements that Solve the Bigger Business Issues After more than a decade functioning in production environments, security information and event management (SIEM) solutions are now considered
More informationIBM Internet Security Systems Proventia Management SiteProtector
Supporting compliance and mitigating risk through centralized management of enterprise security devices IBM Internet Security Systems Proventia Management SiteProtector Highlights Reduces the costs and
More informationCyber Hygiene: Uncool but necessary. Automate Endpoint Patching to Mitigate Security Risks
Cyber Hygiene: Uncool but necessary Automate Endpoint Patching to Mitigate Security Risks 1 Overview If you analyze any of the recent published attacks, two patterns emerge, 1. 80-90% of the attacks exploit
More informationMaximizing IT Security with Configuration Management WHITE PAPER
Maximizing IT Security with Configuration Management WHITE PAPER Contents 3 Overview 4 Configuration, security, and compliance policies 5 Establishing a Standard Operating Environment (SOE) and meeting
More informationIBM Storwize V7000: For your VMware virtual infrastructure
IBM Storwize V7000: For your VMware virtual infrastructure Innovative midrange disk system leverages integrated storage technologies Highlights Complement server virtualization, extending cost savings
More informationIBM Global Technology Services Provide around-the-clock expertise and protect against Internet threats.
IBM Global Technology Services Provide around-the-clock expertise and protect against Internet threats. Enhancing cost to serve and pricing maturity Keeping up with quickly evolving ` Internet threats
More informationThe case for cloud-based data backup
IBM Global Technology Services IBM SmartCloud IBM Managed Backupi The case for cloud-based data backup IBM SmartCloud Managed Backup offers significant improvement over traditional data backup methods
More informationIBM Cloud IBM Cloud for VMware Solutions Zeb Ahmed Senior Offering Manager and BCDR Leader VMware on IBM Cloud VMworld 2017 Content: Not for publicati
LHC2432BU IBM Cloud for VMware Solutions Zeb Ahmed Senior Offering Manager and BCDR Leader VMware on IBM Cloud #VMworld IBM Cloud IBM Cloud for VMware Solutions Zeb Ahmed Senior Offering Manager and BCDR
More informationSmarter Computing at Sogeti
Smarter Computing at Sogeti How IBM Smarter Computing technologies enabled a leading global IT service provider to address emerging business needs Introduction: New IT challenges in a changing world The
More informationWhite Paper Server. Five Reasons for Choosing SUSE Manager
White Paper Server Five Reasons for Choosing SUSE Manager Server White Paper Five Reasons for Choosing SUSE Manager SUSE Manager for Comprehensive Linux Systems Management According to a recent Forrester
More informationNetworking for a dynamic infrastructure: getting it right.
IBM Global Technology Services Networking for a dynamic infrastructure: getting it right. A guide for realizing the full potential of virtualization June 2009 Executive summary June 2009 Networking for
More informationAccelerating growth and digital adoption with seamless identity trust
Accelerating growth and digital adoption with seamless identity trust IBM Trusteer helps organizations seamlessly establish identity trust across the omnichannel customer journey Let s get started 3 Introduction
More informationZENworks: Meeting the Top Requirements for Automated Patch Management
Technical White Paper ZENworks ZENworks: Meeting the Top Requirements for Automated Patch Management Table of Contents page Simplifying Patch Management...2 Key Enterprise Patch and Vulnerability Management
More informationThe Convergence of Security and Compliance
ebook The Convergence of Security and Compliance How Next Generation Endpoint Security Manages 5 Core Compliance Controls Table of Contents Introduction....3 Positive versus Negative Application Security....3
More informationIBM Storwize V5000 disk system
IBM Storwize V5000 disk system Latest addition to IBM Storwize family delivers outstanding benefits with greater flexibility Highlights Simplify management with industryleading graphical user interface
More informationMay the (IBM) X-Force Be With You
Ann Arbor, Michigan July 23-25 May the (IBM) X-Force Be With You A QUICK PEEK INTO ONE OF THE MOST RENOWNED SECURITY TEAMS IN THE WORLD Marlon Machado Worldwide Standardization Leader, Application Security
More informationCloud-based data backup: a buyer s guide
IBM Global Technology Services IBM SmartCloud IBM Managed Backupi Cloud-based data backup: a buyer s guide How to choose a third-party provider to develop, implement and manage your data backup solution
More informationCredit Union Cyber Crisis: Gaining Awareness and Combatting Cyber Threats Without Breaking the Bank
Credit Union Cyber Crisis: Gaining Awareness and Combatting Cyber Threats Without Breaking the Bank Introduction The 6,331 credit unions in the United States face a unique challenge when it comes to cybersecurity.
More informationINTELLIGENCE DRIVEN GRC FOR SECURITY
INTELLIGENCE DRIVEN GRC FOR SECURITY OVERVIEW Organizations today strive to keep their business and technology infrastructure organized, controllable, and understandable, not only to have the ability to
More informationBest Practices in Securing a Multicloud World
Best Practices in Securing a Multicloud World Actions to take now to protect data, applications, and workloads We live in a multicloud world. A world where a multitude of offerings from Cloud Service Providers
More informationSOLUTION BRIEF FPO. Imperva Simplifies and Automates PCI DSS Compliance
SOLUTION BRIEF FPO Imperva Simplifies and Automates PCI DSS Compliance Imperva Simplifies and Automates PCI DSS Compliance SecureSphere drastically reduces both the risk and the scope of a sensitive data
More informationIBM BigFix Compliance PCI Add-on Version 9.5. Payment Card Industry Data Security Standard (PCI DSS) User's Guide IBM
IBM BigFix Compliance PCI Add-on Version 9.5 Payment Card Industry Data Security Standard (PCI DSS) User's Guide IBM IBM BigFix Compliance PCI Add-on Version 9.5 Payment Card Industry Data Security Standard
More informationMcAfee epolicy Orchestrator
McAfee epolicy Orchestrator Centrally get, visualize, share, and act on security insights Security management requires cumbersome juggling between tools and data. This puts the adversary at an advantage
More informationTransitioning business resiliency to the cloud
IBM Global Technology Services White Paper IBM Business Continuity and Resiliency Services Transitioning business resiliency to the cloud Cloud technologies and services help improve availability and recovery
More informationTechnical Review Managing Risk, Complexity, and Cost with SanerNow Endpoint Security and Management Platform
Technical Review Managing Risk, Complexity, and Cost with SanerNow Endpoint Security and Management Platform Date: October, 2018 Author: Jack Poller, Sr. Analyst The Challenges Enterprise Strategy Group
More informationIBM Tivoli Storage Manager 6
Leverage next-generation data storage and recovery management capabilities IBM Tivoli Storage Manager 6 IBM Tivoli Storage Manager is the core component of an enterprise-wide data protection and recovery
More informationClient Health Key Features Datasheet. Client Health Key Features Datasheet
Client Health Key Features Datasheet Client Health Key Features Datasheet Introducing the fastest way to manage endpoint health and security at scale Are you spending countless hours trying to find and
More informationA Checklist for Compliance in the Cloud 1. A Checklist for Compliance in the Cloud
A Checklist for Compliance in the Cloud 1 A Checklist for Compliance in the Cloud A Checklist for Compliance in the Cloud 1 With the industrialization of hacking and the enormous impact of security breaches,
More informationIBM Software IBM InfoSphere Information Server for Data Quality
IBM InfoSphere Information Server for Data Quality A component index Table of contents 3 6 9 9 InfoSphere QualityStage 10 InfoSphere Information Analyzer 12 InfoSphere Discovery 13 14 2 Do you have confidence
More informationMobilize your corporate content and apps
IBM Security Thought Leadership White Paper Mobilize your corporate content and apps Enable simple and protected mobile collaboration for business Mobilize your corporate content and apps Mobile strategy
More informationIBM Cloud Lessons Learned: VMware Cloud Foundation on IBM Cloud VMworld 2017 We are a cognitive solutions and cloud platform company that leverages th
LHC3384BUS Lessons Learned: VMware Cloud Foundation on IBM Cloud VMworld 2017 Content: Not for publication #VMworld #LHC3384BUS IBM Cloud Lessons Learned: VMware Cloud Foundation on IBM Cloud VMworld 2017
More informationEscaping PCI purgatory.
Security April 2008 Escaping PCI purgatory. Compliance roadblocks and stories of real-world successes Page 2 Contents 2 Executive summary 2 Navigating the road to PCI DSS compliance 3 Getting unstuck 6
More informationPower, Patch, and Endpoint Managers Expand McAfee epolicy Orchestrator Platform Capabilities While Cutting Costs
Power, Patch, and Endpoint Managers Expand McAfee epolicy Orchestrator Platform Capabilities While Cutting Costs Autonomic Software solutions are fully integrated into the McAfee epolicy Orchestrator (McAfee
More informationDeliver robust products at reduced cost by linking model-driven software testing to quality management.
Quality management White paper September 2009 Deliver robust products at reduced cost by linking model-driven software testing to quality management. Page 2 Contents 2 Closing the productivity gap between
More informationThe Convergence of Security and Compliance. How Next Generation Endpoint Security Manages 5 Core Compliance Controls
The Convergence of Security and Compliance How Next Generation Endpoint Security Manages 5 Core Compliance Controls Table of Contents Introduction.... 3 Positive versus Negative Application Security....
More informationlocuz.com SOC Services
locuz.com SOC Services 1 Locuz IT Security Lifecycle services combine people, processes and technologies to provide secure access to business applications, over any network and from any device. Our security
More informationIBM Tivoli Network Manager Entry Edition
Increase network performance with real-time discovery, topology visualization and root-cause analysis IBM Highlights Leverage a product tailor-made to manage even the most complex, heterogeneous enterprise
More informationPractical Patch Compliance
Practical Patch Compliance Relieving IT Security Audit Pain, From the Data Center to the Desktop Microsoft s System Center Configuration Manager doesn t handle every aspect of Linux/UNIX and third-party
More informationIBM Security Network Protection Solutions
Systems IBM Security IBM Security Network Protection Solutions Pre-emptive protection to keep you Ahead of the Threat Tanmay Shah Product Lead Network Protection Appliances IBM Security Systems 1 IBM Security
More informationDell helps you simplify IT
Dell helps you simplify IT Workshops the first step. Reduce desktop and data center complexity. Improve productivity. Innovate. Dell IT Consulting Services New Edition 2011 Introduction Are you spending
More informationStellar performance for a virtualized world
IBM Systems and Technology IBM System Storage Stellar performance for a virtualized world IBM storage systems leverage VMware technology 2 Stellar performance for a virtualized world Highlights Leverages
More informationSYMANTEC: SECURITY ADVISORY SERVICES. Symantec Security Advisory Services The World Leader in Information Security
SYMANTEC: SECURITY ADVISORY SERVICES Symantec Security Advisory Services The World Leader in Information Security Knowledge, as the saying goes, is power. At Symantec we couldn t agree more. And when it
More informationA Government Health Agency Trusts Tenable to Protect Patient Data and Manage Expanding Attack Surface
A Government Health Agency Trusts Tenable to Protect Patient Data and Manage Expanding Attack Surface ORGANIZATION SNAPSHOT The level of visibility Tenable.io provides is phenomenal, something we just
More informationSustainable Security Operations
Sustainable Security Operations Optimize processes and tools to make the most of your team s time and talent The number and types of security incidents organizations face daily are steadily increasing,
More informationAKAMAI CLOUD SECURITY SOLUTIONS
AKAMAI CLOUD SECURITY SOLUTIONS Whether you sell to customers over the web, operate data centers around the world or in the cloud, or support employees on the road, you rely on the Internet to keep your
More informationIBM Real-time Compression and ProtecTIER Deduplication
Compression and ProtecTIER Deduplication Two technologies that work together to increase storage efficiency Highlights Reduce primary storage capacity requirements with Compression Decrease backup data
More informationIBM PowerSC. Designed for Enterprise Security & Compliance in Cloud and Virtualised environments. Highlights
IBM PowerSC Designed for Enterprise Security & Compliance in Cloud and Virtualised environments Highlights Simplify management and measurement for security & compliance Quickly view security compliance
More informationQUICK WINS: Why You Must Get Defensive About Application Security
QUICK WINS: Why You Must Get Defensive About Application Security IN TODAY S COMPETITIVE BUSINESS ENVIRONMENT, DEMONSTRATING IMMEDIATE PAYOFFS WILL HELP YOU PROVE JUST HOW VALUABLE AN APPLICATION SECURITY
More informationComprehensive Database Security
Comprehensive Database Security Safeguard against internal and external threats In today s enterprises, databases house some of the most highly sensitive, tightly regulated data the very data that is sought
More informationForeScout CounterACT. Continuous Monitoring and Mitigation. Real-time Visibility. Network Access Control. Endpoint Compliance.
Real-time Visibility Network Access Control Endpoint Compliance Mobile Security ForeScout CounterACT Continuous Monitoring and Mitigation Rapid Threat Response Benefits Rethink IT Security Security Do
More informationSymantec Network Access Control Starter Edition
Symantec Network Access Control Starter Edition Simplified endpoint compliance Overview makes it easy to begin implementing a network access control solution. It offers a subset of Symantec Network Access
More informationIBM TS7700 grid solutions for business continuity
IBM grid solutions for business continuity Enhance data protection and business continuity for mainframe environments in the cloud era Highlights Help ensure business continuity with advanced features
More informationIBM Endpoint Manager. Francesco Censi WW ATG IEM consultant. Optimizing the World s Infrastructure Moscow, Oct 24 th, 2012
IBM Endpoint Manager Francesco Censi WW ATG IEM consultant francesco.censi@it.ibm.com Optimizing the World s Infrastructure Moscow, Oct 24 th, 2012 2012 IBM Corporation Endpoint complexity continues to
More informationCybersecurity The Evolving Landscape
Cybersecurity The Evolving Landscape 1 Presenter Zach Shelton, CISA Principal DHG IT Advisory Zach.Shelton@DHG.com Raleigh, NC 14+ years of experience in IT Consulting 11+ years of experience with DHG
More informationAutomated, Real-Time Risk Analysis & Remediation
Automated, Real-Time Risk Analysis & Remediation TABLE OF CONTENTS 03 EXECUTIVE SUMMARY 04 VULNERABILITY SCANNERS ARE NOT ENOUGH 06 REAL-TIME CHANGE CONFIGURATION NOTIFICATIONS ARE KEY 07 FIREMON RISK
More informationIBM System Storage EXP3500 Express
EXP3500 Express Low-cost, high-performance 6 Gbps SAS expansion units Highlights Provide a highly available storage system by supporting attachment to the IBM DS3500 Express storage system Support high
More informationIBM Proventia Network Enterprise Scanner
Protecting corporate data with preemptive risk identification IBM Proventia Network Enterprise Scanner Identifying risk and prioritizing protection IBM Proventia Network Enterprise Scanner * (Enterprise
More informationISO/IEC Solution Brief ISO/IEC EventTracker 8815 Centre Park Drive, Columbia MD 21045
Solution Brief 8815 Centre Park Drive, Columbia MD 21045 About delivers business critical software and services that transform high-volume cryptic log data into actionable, prioritized intelligence that
More informationPower, Patch, and Endpoint Managers Expand McAfee epo Platform Capabilities While Cutting Endpoint Costs
Business Brief Power, Patch, and Endpoint Managers Expand McAfee epo Platform Capabilities While Cutting Endpoint Costs McAfee Compatible Solution Autonomic Software Endpoint Manager 1.2 and McAfee epo
More informationSix Sigma in the datacenter drives a zero-defects culture
Six Sigma in the datacenter drives a zero-defects culture Situation Like many IT organizations, Microsoft IT wants to keep its global infrastructure available at all times. Scope, scale, and an environment
More informationSecuring Today s Mobile Workforce
WHITE PAPER Securing Today s Mobile Workforce Secure and Manage Mobile Devices and Users with Total Defense Mobile Security Table of Contents Executive Summary..................................................................................
More informationIBM Security Services Overview
Services Overview Massimo Nardone Senior Lead IT Security Architect Global Technology Services, IBM Internet Security Systems massimo.nardone@fi.ibm.com THE VEHICLE THE SKILL THE SOLUTION Today s Business
More informationPenetration testing a building automation system
Penetration testing a building automation system Is your smart office creating backdoors for hackers? IBM X-Force Research Click here to start There is much focus in the IT industry on securing web servers,
More informationAutomating the Top 20 CIS Critical Security Controls
20 Automating the Top 20 CIS Critical Security Controls SUMMARY It s not easy being today s CISO or CIO. With the advent of cloud computing, Shadow IT, and mobility, the risk surface area for enterprises
More informationCROWDSTRIKE FALCON FOR THE PUBLIC SECTOR
C R O W D S T R I K E P U B L I C S E C T O R S O L U T I O N S CROWDSTRIKE FALCON FOR THE PUBLIC SECTOR SECURE YOUR ENTERPRISE WITH A THAT PROVIDES UNRIVALED PROTECTION, SECURITY EXPERTISE, AND OPTIMAL
More informationIBM Security AppScan now supports SAP code quality and data loss prevention testing with Virtual Forge CodeProfiler for IBM Security AppScan Source
IBM United States Software Announcement 212-255, dated July 24, 2012 IBM Security AppScan now supports SAP code quality and data loss prevention testing with Virtual Forge CodeProfiler for IBM Security
More informationEndpoint Security Can Be Much More Effective and Less Costly. Here s How
Endpoint Security Can Be Much More Effective and Less Costly Here s How Contents Introduction More is not always better Escalating IT Security Budgets Ineffective management Need of the hour System management
More informationSymantec Data Center Transformation
Symantec Data Center Transformation A holistic framework for IT evolution As enterprises become increasingly dependent on information technology, the complexity, cost, and performance of IT environments
More informationData Sheet: Endpoint Security Symantec Network Access Control Starter Edition Simplified endpoint enforcement
Simplified endpoint enforcement Overview makes it easy to begin implementing a network access control solution. It offers a subset of Symantec Network Access Control functionality that can be completely
More informationVirtualizing disaster recovery using cloud computing
IBM Global Technology Services Thought Leadership White Paper January 2013 Virtualizing disaster recovery using cloud computing Protect your applications quickly with a resilient cloud 2 Virtualizing disaster
More informationHP Fortify Software Security Center
HP Fortify Software Security Center Proactively Eliminate Risk in Software Trust Your Software 92% of exploitable vulnerabilities are in software National Institute for Standards and Technology (NIST)
More informationManaged Security Services - Endpoint Managed Security on Cloud
Services Description Managed Security Services - Endpoint Managed Security on Cloud The services described herein are governed by the terms and conditions of the agreement specified in the Order Document
More informationSecurity-as-a-Service: The Future of Security Management
Security-as-a-Service: The Future of Security Management EVERY SINGLE ATTACK THAT AN ORGANISATION EXPERIENCES IS EITHER ON AN ENDPOINT OR HEADING THERE 65% of CEOs say their risk management approach is
More informationA Comprehensive Guide to Remote Managed IT Security for Higher Education
A Comprehensive Guide to Remote Managed IT Security for Higher Education About EventTracker EventTracker enables its customers to stop attacks and pass IT audits. EventTracker s award-winning product suite
More informationContinuous protection to reduce risk and maintain production availability
Industry Services Continuous protection to reduce risk and maintain production availability Managed Security Service Answers for industry. Managing your industrial cyber security risk requires world-leading
More informationSymantec Network Access Control Starter Edition
Simplified endpoint compliance Overview makes it easy to begin implementing a network access control solution. It offers a subset of Symantec Network Access Control functionality that can be completely
More informationTips for Effective Patch Management. A Wanstor Guide
Tips for Effective Patch Management A Wanstor Guide 1 Contents + INTRODUCTION + UNDERSTAND YOUR NETWORK + ASSESS THE PATCH STATUS + TRY USING A SINGLE SOURCE FOR PATCHES + MAKE SURE YOU CAN ROLL BACK +
More informationOracle Buys Automated Applications Controls Leader LogicalApps
Oracle Buys Automated Applications Controls Leader LogicalApps To strengthen Oracle s Governance, Risk and Compliance Suite with Real-time Policy Enforcement October 26, 2007 Disclaimer The following is
More informationInformation Infrastructure and Security. The value of smart manufacturing begins with a secure and reliable infrastructure
Information Infrastructure and Security The value of smart manufacturing begins with a secure and reliable infrastructure The Case for Connection To be competitive, you must be connected. That is why industrial
More informationOverview. Business value
PRODUCT SHEET CA Top Secret for z/vse CA Top Secret for z/vse CA Top Secret for z/vse provides innovative and comprehensive security for business transaction environments which enable your business to
More informationCarbon Black PCI Compliance Mapping Checklist
Carbon Black PCI Compliance Mapping Checklist The following table identifies selected PCI 3.0 requirements, the test definition per the PCI validation plan and how Carbon Black Enterprise Protection and
More informationIBM Z servers running Oracle Database 12c on Linux
IBM Z servers running Oracle Database 12c on Linux Put Z to work for you Scale and grow Oracle Database 12c applications and data with confidence Benefit from mission-critical reliability for Oracle Database
More informationIBM and Juniper Networks
IBM and Juniper Networks Transforming and simplifying your network infrastructure S O L U T I O N B R I E F Enabling strategic advantage in a changing world A less expensive energy bill, a package that
More informationProtect Your End-of-Life Windows Server 2003 Operating System
Protect Your End-of-Life Windows Server 2003 Operating System Your guide to mitigating risks in your Windows Server 2003 Systems after the end of support End of Support is Not the End of Business When
More informationPaper. Delivering Strong Security in a Hyperconverged Data Center Environment
Paper Delivering Strong Security in a Hyperconverged Data Center Environment Introduction A new trend is emerging in data center technology that could dramatically change the way enterprises manage and
More informationMeeting PCI DSS 3.2 Compliance with RiskSense Solutions
Meeting PCI DSS 3.2 Compliance with Solutions Platform the industry s most comprehensive, intelligent platform for managing cyber risk. 2018, Inc. What s Changing with PCI DSS? Summary of PCI Business
More informationwith Advanced Protection
with Advanced Email Protection OVERVIEW Today s sophisticated threats are changing. They re multiplying. They re morphing into new variants. And they re targeting people, not just technology. As organizations
More informationMODERNIZE INFRASTRUCTURE
SOLUTION OVERVIEW MODERNIZE INFRASTRUCTURE Support Digital Evolution in the Multi-Cloud Era Agility and Innovation Are Top of Mind for IT As digital transformation gains momentum, it s making every business
More informationSymantec Network Access Control Starter Edition
Simplified endpoint compliance Overview makes it easy to begin implementing a network access control solution. It offers a subset of Symantec Network Access Control functionality that can be completely
More informationAND FINANCIAL CYBER FRAUD INSTITUTIONS FROM. Solution Brief PROTECTING BANKING
PROTECTING BANKING AND FINANCIAL INSTITUTIONS FROM CYBER FRAUD Enabling the financial industry to become proactively secure and compliant Overview In order to keep up with the changing digital payment
More information